HQ/EMEAFind out how we can help your business
Tempur Sealy, one of the world’s largest mattress-selling companies, has suffered a cyberattack that caused it to shut down parts of its systems to prevent further damage.
The affected company is one of the most influential bedding providers worldwide since it governs brands such as Stearns & Foster, Sealy, Cocoon, and Tempus. Based on reports, the company earned about $1.2 billion in net sales earlier this year. It announced its purchase of the United States’ biggest mattress speciality retailer, Mattress Firm, a couple of months ago.
Tempur Sealy immediately disclosed the cybercriminal activity to relevant individuals and law enforcement agencies.
A Tempur Sealy financial officer reported the cybercriminal attack to the United States Securities and Exchange Commission earlier this week. The report included the company’s standard operation suffered interruptions, which started on July 23.
The company has yet to respond to any request for comment about the true nature of the cyberattack. However, reports indicated that the company noted in the 8-K filing that they had activated incident response and business continuity plans that could address the malicious incident.
The continuity protocols include the proactive shutdown to ensure the safety of the Company’s Information Technology systems. The shutdown subsequently caused a temporary interruption of the company’s operations.
A representative also disclosed that they had contacted legal counsel and employed a third-party security firm and other incident response experts to address the issue. Furthermore, the company has also reported the attack to relevant law enforcement agencies.
The company has initiated the process to bring some of its critical IT systems back online and has resumed some operations. On the other hand, IT officials are still investigating the incident, and the firm is in the middle of identifying the financial consequences the attack will have on its business and global operations.
Tempur Sealy is still unsure if there is customer or employee information impacted in the incident. Still, they assured everyone that they would notify regulators if they found any proof of a data leak. Lastly, no ransomware gang or threat group has yet to claim responsibility for the incident.
